Ticket #32085 (closed defect: fixed)
chasen @2.4.4_1: should be downgraded to ChaSen 2.3.3
|Reported by:||takanori@…||Owned by:||hum@…|
According to a report from JPCERT, ChaSen 2.4.x has a buffer overflow vulnerability.
JVN#16901583: A buffer overflow vulnerability in ChaSen https://jvn.jp/jp/JVN16901583/index.html
Maybe port:chasen should be downgraded to version 2.3.3, since it looks like the developer doesn't have any plans to fix the bug.
Note: See TracTickets for help on using tickets.